<html>
<head>
<title> Setting Up Support for Sender Policy Framework System </title>
<meta name="Keywords" content="" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<link rel="stylesheet" type="text/css" href="stylesheet.css"/>
<script src="locate.js"></script>
<link href="prettify.css" type="text/css" rel="stylesheet" />
<script type="text/javascript" src="prettify.js"></script>
</head>
<script src="highlight.js"></script>
<body bgcolor="#FFFFFF" text="#000000" link="#0000A0" alink="#008000" vlink="#FF0000" onLoad="FindCorrectTOCPage(); prettyPrint()">
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td>
<p class="pagenavigation"><a href="16876.htm" target="_self"><img src="38976.gif" alt="Previous page" height="16" width="16" vspace="0" hspace="1" align="top" border="0"> Previous page</a></p></td>
<td>
<p class="pagenavigation"><a href="17168.htm" target="_self"><img src="38977.gif" alt="Next page" height="16" width="16" vspace="0" hspace="1" align="top" border="0"> Next page</a></p></td>
<td>
<p class="pagenavigation"><a href="toc4151860.htm" target="TOC"><img src="38970.gif" alt="Locate page" height="16" width="16" vspace="0" hspace="1" align="top" border="0"> Locate page</a></p></td>
<td>
<p class="pagenavigation"><a href="toc4151860.htm" target="TOC"><a class="" title="" href="javascript:print();" target="_self"><img src="39072.gif" alt="Print this page" height="16" width="16" vspace="0" hspace="1" align="top" border="0"></a></a></p></td>
</tr>
</table>
<h4 class="heading4">Setting Up Support for Sender Policy Framework System</h4>
<p class="procedureheading">To set up support for Sender Policy Framework on your server:</p>
<ol class="procedurelistnumber"><li class="procedurelistnumber">Click the <strong class="specialbold">Server</strong> shortcut in the navigation pane.</li><li class="procedurelistnumber">Click the <strong class="specialbold">Mail</strong> icon in the Services group. The server-wide mail preferences screen will open on the <strong class="specialbold">Preferences</strong> tab.</li><li class="procedurelistnumber">Select the <strong class="specialbold">Switch on  </strong><strong class="specialbold">SPF spam protection</strong> check box and specify how to deal with e-mail:<ul class="listbullet2"><li class="listbullet2">To accept all incoming messages regardless of SPF check results, select the <strong class="specialbold">Create only Received SPF-headers, never block</strong> option from the <strong class="specialbold">SPF checking mode </strong>drop-down box. This option is recommended.</li><li class="listbullet2">To accept all incoming messages regardless of SPF check results, even if SPF check failed due to DNS lookup problems, select the <strong class="specialbold">In case of DNS lookup problems, generate temporary errors</strong> option from the <strong class="specialbold">SPF checking mode </strong>drop-down box.</li><li class="listbullet2">To reject messages from senders who are not authorized to use the domain in question, select the option <strong class="specialbold">Reject mail if SPF resolves to fail</strong> from the <strong class="specialbold">SPF checking mode </strong>drop-down box.</li><li class="listbullet2">To reject the messages that are most likely from senders who are not authorized to use the domain in question, select the option <strong class="specialbold">Reject mail if SPF resolves to softfail</strong> from the <strong class="specialbold">SPF checking mode </strong>drop-down box.</li><li class="listbullet2">To reject the messages from senders who cannot be identified by SPF system as authorized or not authorized because the domain has no SPF records published, select the option <strong class="specialbold">Reject mail if SPF resolves to neutral</strong> from the <strong class="specialbold">SPF checking mode </strong>drop-down box.</li><li class="listbullet2">To reject the messages that do not pass SPF check for any reason (for example, when sender's domain does not implement SPF and SPF checking returns the &quot;unknown&quot; status), select the option <strong class="specialbold">Reject mail if SPF does not resolve to pass</strong> from the <strong class="specialbold">SPF checking mode </strong>drop-down box.</li></ul></li><li class="procedurelistnumber">To specify additional rules that are applied by the spam filter before the SPF check is actually done by the mail server, type the rules you need in the <strong class="specialbold">SPF local rules</strong> box. <p class="listcontinue">We recommend that you add a rule for checking messages against the open database of trusted senders, for example, 'include:spf.trusted-forwarder.org'. For more information on SPF rules, visit <a class="externalhyperlinktemplate" title="" href="http://www.ietf.org/internet-drafts/draft-schlitt-spf-classic-02.txt" target="_blank">http://www.ietf.org/internet-drafts/draft-schlitt-spf-classic-02.txt</a>.</p>
</li><li class="procedurelistnumber">To specify the rules that are applied to domains that do not publish SPF records, type the rules into the <strong class="specialbold">SPF guess rules</strong> box. <p class="listcontinue">Specifying <strong class="specialbold">a/24 mx/24 ptr</strong> gives good results for spam filters scoring Received-SPF lines.</p>
</li><li class="procedurelistnumber">To specify an arbitrary error notice that is returned to the SMTP sender when a message is rejected, type it into the <strong class="specialbold">SPF explanation text</strong> box. <p class="listcontinue">If no value is specified, the default text will be used as a notification.</p>
</li><li class="procedurelistnumber">To complete the setup, click <strong class="specialbold">OK</strong>.</li></ol>


</body>
<script>highlightTOC()</script>
</html>

